ᗪavid John
ThibI was tired of typing in my long passphrase constantly on my laptop, so I got myself a Yubikey. Now I have a shirt but secure PIN
Раджа
А сейчас какие-то ключи для двухфакторки возможно в Россию заказать не за сотни денег?
Хотя бы до 4 тыр, ну или какие сейчас цены на них.
Я вообще в этой теме не шарю.
Yubikey 5 стоит в районе 8 тыр, Yubikey SK стоит 4 тыр. ХЗ чем они различаются.
Я пробовал подобное с флиппером делать, но там файлик с флешки спереть как нефиг. делать
The New OilWhat is #U2F used for and what are the benefits?
What is U2F used for and what are the benefits? | Tuta
A U2F security key is important to secure your authentication process. These U2F security keys protect your account from malicious take-over, including pishing attacks. This guide helps you to understand what a U2F security key is and why we at Tuta recommend using one. This helps you to never lose access to your online identity!
pink@erinaceus
Unless You have a dedicated #U2F device Yubikeys usually prefer FIDO2.
I *think* it is possible to U2F devices in modern browsers but they have to be re-enrolled (also depends on the security setting).
@waldschnecke
Unless You have a dedicated #U2F device Yubikeys usually prefer FIDO2.
I *think* it is possible to U2F devices in modern browsers but they have to be re-enrolled (also depends on the security setting).
@waldschnecke
Edwin TörökI login maybe once a year on my domain registrar's website (Gandi). Something has changed in both Firefox/Chromium since last time, because neither of them accepted any of my Yubikeys anymore: it prompted for a PIN, and I don't remember setting one! (I set one on the OpenPGP application, but that PIN is not accepted for FIDO2).
Temporarily disabling FIDO2 allowed the login to succeed as documented here: https://support.yubico.com/s/article/Understanding-YubiKey-PINs https://support.yubico.com/s/article/Enabling-or-disabling-applications
Note that this does *not* reset FIDO2 (Which IIUC would delete the FIDO U2F key too).
In that case IIUC it uses FIDO U2F instead of FIDO2 with a PIN. Although this seems like a bug, why doesn't the browser offer me the option of using U2F when I reject providing a FIDO2 PIN? Clearly all this worked fine several years ago when I initially registered the Yubikeys.
#FIDO2 #Yubikey #U2F
Mad Argon 
Some time ago I mentioned Yubikey migration. Unfortunately in work I have to deal with #Microsoft and #Google services. Besides confusing #authentication settings UI I noticed interesting thing - both services in own way mixed #U2F and #passkeys in settings. It basically wasn't possible to know what I was going to set. Even terms used on popups were different in different process stages.
Later I could check it was saved on Yubikey as passkeys and it was probably the only way to be sure.
Now I wonder, why these settings were so mixed. Did they do it purposely? Just their "normal" UI/UX chaos?
Anyone who uses more mainstream, passkey-supporting services saw something similar? I didn't saw any other passkeys "in the wild" to compare.
Sebin Nyshkim